Forum Discussion
Solved
CVE-2020-15999
Hello,
is Edge concerned by the FreeType 0-day ? If yes, what version fixes it ?
Thanks.
Update:
Edge now has this security patch, stable just got updated to Version 86.0.622.51 (Official build) (64-bit)
User agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36 Edg/86.0.622.51
Update:
Edge now has this security patch, stable just got updated to Version 86.0.622.51 (Official build) (64-bit)
User agent Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4240.111 Safari/537.36 Edg/86.0.622.51 I don't think it's added to Edge stable yet, could be wrong
First, looking at these websites
https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV200002
and here
https://docs.microsoft.com/en-us/deployedge/microsoft-edge-relnotes-security
the latest vision in there is 86.0.622.38
while Edge stable is currently at Version 86.0.622.48so they haven't updated them yet.
second, in Edge stable Version 86.0.622.48, the Chromium version is 86.0.4240.80
But CVE-2020-15999 got fixed in 86.0.4240.111
https://chromereleases.googleblog.com/2020/10/stable-channel-update-for-desktop_20.html
